Date: Fri, 27 Feb 2009 18:50:59 +0000 From: Matthew Seaman <m.seaman@infracaninophile.co.uk> To: Kirk Strauser <kirk@strauser.com> Cc: freebsd-questions@freebsd.org Subject: Re: Disabling inbound email in a jail Message-ID: <49A83613.4020701@infracaninophile.co.uk> In-Reply-To: <200902270949.22494.kirk@strauser.com> References: <200902270949.22494.kirk@strauser.com>
next in thread | previous in thread | raw e-mail | index | archive | help
This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enigE45287847DEC40E8AA77C92E Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: quoted-printable Kirk Strauser wrote: > I only want sendmail in a jail to do one thing: forward nightly reports= from root@localhost to a real account on another=20 > machine. What's the proper way to configure this? By default, sendmai= l_enable=3D"NO" in /etc/rc.conf still gives a=20 > running sendmail that accepts mail from other hosts: >=20 > me@realhost$ echo foo | mail me@jail.example.com >=20 > me@jail.example.com$ tail -f /var/log/maillog > Feb 27 09:43:37 jail.example.com sm-mta[86832]: n1RFhbBp086832: from=3D= <me@realhost>, size=3D735, class=3D0,=20 > nrcpts=3D1, msgid=3D<20090227154335.877A442071@realhost>, bodytype=3D7B= IT, proto=3DESMTP, daemon=3DDaemon0,=20 > relay=3Djail.example.com [10.0.5.70] > Feb 27 09:43:37 jail.example.com sm-mta[86833]: n1RFhbBp086832: to=3D<m= e@jail.example.com>, delay=3D00:00:00,=20 > xdelay=3D00:00:00, mailer=3Dlocal, pri=3D30983, relay=3Dlocal, dsn=3D2.= 0.0, stat=3DSent >=20 > However, if I set sendmail_enable=3D"NONE", then I can't send outbound = email either: >=20 > me@jail.example.com$ echo foo | mail me@realhost > me@jail.example.com$ tail -f /var/log/maillog > Feb 27 09:37:37 jail.example.com sendmail[86513]: n1RFbbg3086513: from=3D= me, size=3D28, class=3D0, nrcpts=3D1,=20 > msgid=3D<200902271537.n1RFbbg3086513@jail.example.com>, relay=3Dme@loca= lhost > Feb 27 09:37:37 jail.example.com sendmail[86513]: n1RFbbg3086513: to=3D= me@realhost, ctladdr=3Dme (1001/1001),=20 > delay=3D00:00:00, xdelay=3D00:00:00, mailer=3Drelay, pri=3D30028, relay= =3D[127.0.0.1] [127.0.0.1], dsn=3D4.0.0,=20 > stat=3DDeferred: Connection refused by [127.0.0.1] >=20 > What's the happy medium between "sendmail wide open" (eg sendmail_enabl= e=3D"NO" (WTF?)) and "disabled mail=20 > system" (eg sendmail_enable=3D"NONE")? Here's a possible solution: http://lists.freebsd.org/pipermail/freebsd-questions/2007-March/145682.ht= ml Cheers, Matthew --=20 Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate Kent, CT11 9PW --------------enigE45287847DEC40E8AA77C92E Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.10 (FreeBSD) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEAREIAAYFAkmoNhkACgkQ8Mjk52CukIw1sgCgi3j3e3opXUhrppxFEaMnk9AS +m0An2cvLqppLH7fFc/pCj26Ys5Nqk9N =rATX -----END PGP SIGNATURE----- --------------enigE45287847DEC40E8AA77C92E--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?49A83613.4020701>